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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 

1. (Currently Amended) A method for encrypting an original document for 
distribution to a selected recipient chosen from a plurality of possible recipients, comprising 
the steps of: 

generating a session key based on a random number privately maintained only 
by the owner, including an encryptor, of the original document; 

encrypting the original document with the session key to create an encrypted 

document; 

generating a proxy key based on a public key corresponding to the selected 

recipient; and 

applving the proxv kev to the encrvpted document to transform transforming 
the encrypted document into with the proxy key to create a transformed document, wherein 
the encrypted document remains in an encrypted state while being transformed into d uring 
the transformation to the transformed documen t and is not decrvpted to the original document 
and re-encrvpted at anv point during the transformation . 

2. (Original) The method of claim 1, further comprising the step of transmitting 
the transformed document to the selected recipient. 

3. (Previously Presented) The method of claim 1, further comprising the steps of: 
recovering the session key from the transformed document; and 
decrypting the transformed document with the session key to recover the 

original document. 

4. (Original) The method of claim 3, wherein the recovering step is performed by 
applying a private key corresponding to the selected recipient. 
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5. (Previously Presented) The method of claim 1, wherein the encrypting step is 
performed with a combination of a symmetric private-key encryption scheme and an 
asymmetric public -key encryption scheme. 

6. (Previously Presented) The method of claim 5, wherein the asymmetric 
public -key encryption scheme is based on the ElGamal cryptosystem. 

7. (Previously Presented) The method of claim 5, wherein the encrypted 
document comprises a first portion representative of the original document encrypted via the 
symmetric private -key encryption scheme using the session key, and a second portion 
representative of the session key encrypted using an owner's private key according to the 
asymmetric public -key encryption scheme. 

8. (Previously Presented) The method of claim 1, wherein the original document 
is distributed to the selected recipient through at least one additional intermediate grantor by 
repeating the following steps for each additional intermediate grantor: 

generating a new proxy key based on the intermediate grantor's public key; 

and 

transforming the encrypted document with the new proxy key to create a 
transformed document customized for the intermediate grantor. 

9. (Previously Presented) The method of claim 1, wherein the encrypted 
document has been encrypted with a Cramer-Shoup encryption scheme. 

10. (Previously Presented) The method of claim 5, wherein the encrypted 
document comprises a first portion representative of the original document encrypted via the 
symmetric private -key encryption scheme using the session key, and a second portion 
representative of the session key encrypted using an owner's private key according to the 
asymmetric public -key encryption scheme. 
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11. (Previously Presented) The method of claim 1, wherein the encrypted 
document has been encrypted with a modified ElGamal encryption scheme. 

12. (Previously Presented) The method of claim 1, wherein the steps of generating 
a session key, encrypting the original document, generating a proxy key, and transforming the 
encrypted document are performed by the grantor. 

13. (Currently Amended) A system operable to encrypt an original document for 
distribution to a selected recipient chosen from a plurality of possible recipients, comprising: 

a session key generation system that generates a session key based on a 
random number privately maintained only by the owner, including an encryptor, of the 
original document; 

an encryption system that encrypts the original document with the session key 
to create an encrypted document; 

a proxy key generation system that generates a proxy key based on a public 
key corresponding to the selected recipient; and 

a transformation system that applies the proxv kev to the encrvpted document 
to transform transforms the encrypted document into with the proxy key to create a 
transformed document, wherein the encrypted document remains in an encrypted state while 
being transformed into during the transformation to the transformed document and is not 
decrypted to the original document and re-encrypted at any point during the transformation . 

14. (Previously Presented) The system of claim 13, further comprising a 
transmitting system that transmits the transformed document to the selected recipient. 

15. (Previously Presented) The system of claim 13, further comprising: 

a recovering system that recovers the session key from the transformed 

document; and 

a decrypting system that decrypts the transformed document with the session 
key to recover the original document. 
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16. (Previously Presented) The system of claim 13, wherein the recovery of the 
session key is performed by applying a private key corresponding to the selected recipient. 

17. (Previously Presented) The system of claim 13, wherein the encryption is 
performed with a combination of a symmetric private-key encryption scheme and an 
asymmetric public-key encryption scheme. 

18. (Previously Presented) The system of claim 17, wherein the asymmetric 
public-key encryption scheme is based on the ElGamal cryptosystem. 

19. (Previously Presented) The system of claim 17, wherein the encrypted 
document comprises a first portion representative of the original document encrypted via the 
symmetric private-key encryption scheme using the session key, and a second portion 
representative of the session key encrypted using an owner' s private key according to the 
asymmetric public-key encryption scheme. 

20. (Previously Presented) The system of claim 13, wherein the original document 
is distributed to the selected recipient through at least one additional intermediate grantor by 
using the proxy key generation system to generate a new proxy key based on the intermediate 
grantor' s public key, and using the transformation system to transform the encrypted 
document with the new proxy key to create a transformed document customized for the 
intermediate grantor. 

21. (Previously Presented) The system of claim 13, wherein the encrypted 
document has been encrypted with a Cramer-Shoup encryption scheme. 

22. (Previously Presented) The system of claim 13, wherein the encrypted 
document has been encrypted with a modified ElGamal encryption scheme. 



